Keylong Logging Platform
Flow based logging solution for service providers that supports Syslog, IPFIX & Netflow
Highlights
- Multi protocol flow collection
- IPDR creation via log co-relation with AAA or Billing System
- Scalable flow storage to hundreds of servers
- Highly availability architecture
- Rapid log ingestion rate
- Real-time analytics
- Export to external BI or Lawful Interception (LI) systems
Flow Collection & Storage
Keylong supports a modular approach to log ingestion allowing plug-ins for accepting log formats including Syslog, IPFIX and NetFlow-9 which are commonly used by routers, switches, CGN (CGNAT) systems, Broadband Network Gateways (BNG) and Wi-Fi controllers. Multiple log collectors may be used and they can be scaled linearly. Designed with support for very high rate of incoming flows, Keylong uses big-data storage to log data which may be distributed geographically for endless scaling & availability.
Multi Vendor Support
Multiple log storage and co-relation formats are available out of the box. The Keylong solution also allows customisation of log attributes specific to vendors. Search capabilities can be enabled on all attributes.
NAT Logs
With over 20 Syslog RFC standard formats for NAT, Keylong is ready for use in IPv6 transition and IPv4. Conservation projects including schemes such as SNAT and Deterministic NAT44.
Dashboard & Analytics
The Keylong web dashboard allows searching log data on any attribute(s). For systems used in recording access logs, Keylong allows searches on co-related session IPDR (or CDR) as configured at time of log ingestion. that require co-relation Access to the dashboard is secured using a user roles & rights system. ACLs & TLS provide additional security. Keylong analytics leverage several big-data technologies to store, retrieve, archive and index large volumes of flow data. This data is not locked in to a proprietary format hence allowing customers to easily access logs in a standardised manner. Keylong also supports both real-time and non-real-time analytics.
Notifications
The flow processing engine can be configured to emit notifications, replicate flows or direct and store flows in additional locations based on attribute(s) matching.